CVE-2007-5172

2007-10-0120:00:00

mitre

www.cve.org

6.4 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.4%

JSON

Quicksilver Forums before 1.4.1 allows remote attackers to obtain sensitive information by causing unspecified connection errors, which reveals the database password in the resulting error message.

References

forums.quicksilverforums.com/index.php?a=topic&t=1332

secunia.com/advisories/26998

www.securityfocus.com/bid/25887

exchange.xforce.ibmcloud.com/vulnerabilities/36891